BellevueWARecruiter Since 2001
the smart solution for Bellevue jobs

Lead Software Engineer, Data Analytics (Platform) - Threat & Vuln Management

Company: MuleSoft
Location: Bellevue
Posted on: January 12, 2022

Job Description:

To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.Job CategoryProducts and TechnologyJob DetailsLead Software Engineer, Data Analytics (Platform) - Threat & Vulnerability ManagementThe Threat and Vulnerability Management team is looking for a Lead Software Engineer to help build tools to implement and enhance a data platform for processing and reporting security vulnerabilities or misconfigurations across Salesforce's infrastructures.The Analytics and Reporting team supports the overall TVM objective to provide a process and platform to comprehensively and timely detect security misconfigurations detection and reporting across all Salesforce assets in 1st party environments and all public cloud substrate to minimize security risk to Salesforce and its customers.Our security team is looking for an experienced engineer to design and implement infrastructure-as-a-service (IaaS) systems to process vulnerability information from our assets fleet. Our IaaS must be highly scalable and available, capable of collecting information from millions of hardware and software assets, and provide our security teams with the ability to query and act on compliance-related events. You will build state-of-the-art data platforms for processing large scale scanning platforms, covering a diverse collection of assets (e.g., servers, VMs, containers, network, web applications) and public cloud substrates (Azure, AWS, GCP, etc). You will design and implement data systems for continuously monitoring and reporting violations of infrastructure misconfiguration across on-prem and public cloud platforms.This is a great opportunity for ambitious engineers who want technical growth in distributed systems development, big data collection and processing, as well as security. Your talent will find significant outreach and business impact, contributing to the CISO's security goals andreports.Here's what you'll doLearn and adapt to Salesforce security strategies, security goals, security objectives, and security capabilities to improve security postureArchitect and implement vuln data processing platforms for continuous assessment of threat and vulnerabilities, risk and policy compliance across Salesforce software and hardware assetsBuild platforms for processing asset metadata across classes of assets (mobile, laptops, compute servers) and cloud multi-substrates (on-prem, AWS, GCP, Azure, etc)Build monitoring and engagement services to allow security engineers to act on the collected vulnerabilities and compliance data and take remediation actionsAdvance and operate these security assessment platforms in a full DevOps modelOperate in an Agile development environment, including participating in daily scrumsSupport the team's engineering excellence by performing code reviews and mentoring team membersWork cross-functionally with product management and distributed systems engineering teams to complete large scale projects with impact across the companyMotivate and champion a strong team cultureAdapt to change quickly and eagerly: changing requirements, changing priorities, changing strategiesAdvocate security and secure practices throughout SalesforceHere's what you'll needIndustry experience 6+ years of experience including:3+ years experience in SaaS, PaaS, or IaaS software development3+ years experience in a cloud platformEducation. M.Sc/M.Eng in Computer Science/Engineering or B.A/B.Sc. in same disciplines with equivalent years of experienceDistributed systems and data engineering. Expertise in designing, implementing, and operating high-scale distributed systems architectures and concepts, including the following:High-performance, high-availability (99.999%), and self-recoverable systemsLarge scale infrastructure systemsDocker-based development, especially experience using EKSConfiguration management systems, including Infrastructure-as-Code (IAC), Terraform, PuppetProgramming. Proficiency in object-oriented and multi-threaded programming in at least one of the following languages: Python, Golang, JavaSoftware design. Demonstrated expertise in applying systems patterns (e.g., Client-server, N-tier, Primary/secondary, MVC) and API constructions (e.g., Swagger, OpenAPI)Operating systems. Development and software management on Linux (e.g., CentOS) or WindowsSecurity. Strong fundamentals knowledge in security concepts: authentication/authorization frameworks (e.g., SSO, SAML, OAuth, etc), secure transport (e.g., TLS), identity management (e.g., certificates, PKI)Communication. Excellent oral and written communication skillsTeam. Ability to value team success beyond personal contributionsVision Execution. Ability to translate strategic or operational goals to technical and tactical requirements and architecturesDesired Skills/ExperiencePlatform development. Proven track of designing and coding large-scale PaaS or IaaS systemsPublic cloud experience, including a history of building platforms in AWS, GCP, or AzureVuln scanning. Knowledge of vulnerability management solutions, prior experience in vulnerability management and its related processes and procedures, multiple vulnerability scan tools for both Cloud and On-Prem scenarios (Qualys, Nessus, Acunetix, OWASP ZAP, Burp Suite, Netsparker, etc)Security-based credentials highly desired (SSCP, GIAC GCUX, GSEC, GCED, GCIH, GCIA, etc)Understanding of security compliance standards and regulations (e.g., ISO 27001, PCI, SOC, FISMA, FedRAMP, HIPAA, GDPR)AccommodationsIf you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form.Posting StatementAt Salesforce we believe that the business of business is to improve the state of our world. Each of us has a responsibility to drive Equality in our communities and workplaces. We are committed to creating a workforce that reflects society through inclusive programs and initiatives such as equal pay, employee resource groups, inclusive benefits, and more. Learn more about Equality at Salesforce and explore our and are Equal Employment Opportunity and Affirmative Action Employers. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. and do not accept unsolicited headhunter and agency resumes. and will not pay any third-party agency or company that does not have a signed agreement with or .Salesforce welcomes all.Pursuant to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants with arrest and conviction records.As a federal contractor, Salesforce is required to verify that all US-based employees are fully vaccinated against COVID-19. If you receive an offer and are unable to get vaccinated for religious or medical reasons, you may request a reasonable accommodation.

Keywords: MuleSoft, Bellevue , Lead Software Engineer, Data Analytics (Platform) - Threat & Vuln Management, IT / Software / Systems , Bellevue, Washington

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Log In or Create An Account

Get the latest Washington jobs by following @recnetWA on Twitter!

Bellevue RSS job feeds